CLAIMS: 

Having thus described our invention, what we claim as new, and desire to secure by 
Letters Patent is: 



1 LA method for supporting multifield classification of a packet 

2 fragmented into a plurality of fragments in a wire-speed forwarding platform, the 

3 method comprising: 

4 (a) receiving a fragment of the fragmented packet at the forwarding 

5 platform and deriving a key from one or more fields of the received fragment; and 

6 (b) performing multifield classification of the received fragment by 



7 matching the key to a rule out of a plurality of rules, the rule comprising a plurality 

8 of fields including at least one field for specifying whether the received fragment's 

9 fragmentation characteristics are to be applied when performing the multifield 
10 classification. 



1 2. The method for supporting multifield classification according to 

2 Claim 1 , wherein the rule further comprises a field for specifying an action to be 

3 applied to the received fragment, the method further comprising a step of: 

4 applying the action to the received fragment when the key matches 

5 the rule for the received fragment. 

1 3. The method for supporting multifield classification according to 

2 Claim 1, further comprising the steps of: 

3 receiving a packet at the forwarding platform; and 

4 testing the received packet for determining whether the packet 

5 represents a fragment; and 

6 performing the multifield classification of the received packet by 

7 matching a key derived from one or more fields of the received packet to a rule, the 

8 rule comprising a plurality of fields including at least one field for specifying 
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9 

10 



whether the received packet's fragmentation characteristics are to be applied when 
performing the multifield classification. 



1 4. The method for supporting multifield classification according to 

2 Claim 1 , further comprising the steps of: 

3 determining whether there are any transfer control protocol (TCP) 

4 rules; and 

5 performing the multifield classification if no TCP rules are 

6 indicated. 



1 5. The method for supporting multifield classification according to 

2 Claim 1 , further comprising a step of preprocessing the received fragment by 

3 querying a data structure in the forwarding platform, the data structure comprising 

4 one or more flags for determining whether the received fragment is to be classified 

5 in the forwarding platform. 

1 6. The method for supporting multifield classification according to Claim 5, 

2 wherein the preprocessing determines to forward the received fragment to a slow- 

3 speed forwarding platform. 

1 7. The method for supporting multifield classification according to Claim 5, 

2 wherein the preprocessing determines to discard the received fragment. 

1 8. The method for supporting multifield classification according to Claim 5, 

2 wherein the one or more flags are exclusive of one another. 

1 9. The method for supporting multifield classification according to Claim 1 , 

2 wherein the one or more fields that comprise the key derived from the received 

3 fragment include fields from headers representing one or more transmission 

4 protocols. 
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1 1 0. The method for supporting multifield classification according to Claim 9, 

2 wherein the one or more transmission protocols include: Internet Protocol (IP); 

3 User Datagram Protocol (UDP); Internet Control Message Protocol (ICMP); and 

4 Internet Group Management Protocol (IGMP). 

1 11. The method for supporting multifield classification according to Claim 9, 

2 wherein the one or more fields include: source address (SA), destination address 

3 (DA), protocol, fragmented flag (FRAG) and not subsequent flag (NO SUBS) from 

4 a header of an IP transmission protocol; and a source port (SP) and a destination 

5 port (DP) from a header of a TCP transmission protocol. 

1 12. The method for supporting multifield classification according to Claim 1, 

2 wherein a field in each rule comprises one or more values to be matched against the 

3 one or more fields of the derived key for the received fragment. 

1 13. The method for supporting multifield classification according to Claim 1 2, 

2 wherein the one or more values represent an upper and a lower limit for a field in. 

3 each rule. 

1 14. The method for supporting multifield classification according to Claim 1, 

2 wherein the one or more values represent a mask and a value. 

1 15. The method for supporting multifield classification according to Claim 1 , 

2 wherein the plurality of rules are stored in the forwarding platform. 

1 16. The method for supporting multifield classification according to Claim 1 , 

2 wherein the plurality of rules are stored in a rules database. 

1 1 7. A wire-speed forwarding platform for supporting multifield classification of a 

2 packet fragmented into a plurality of fragments, the platform comprising: 
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3 (a) media interface for receiving a fragment of the fragmented 

4 packet at the forwarding platform; 

5 (b) a network processor for deriving a key from one or more fields 

6 of the received fragment; and performing multifield classification of the received 

7 fragment by matching the key to a rule out of a plurality of rules, the rule 

8 comprising a plurality of fields including at least one field for specifying whether 

9 the received fragment's fragmentation characteristics are to be applied when 
1 0 performing the multifield classification. 

1 18. The wire-speed forwarding platform according to Claim 1 7, wherein the rule 

2 further comprises a field for specifying an action to be applied to the received 

3 fragment, the network processor further applying the action to the received 

4 fragment when the key matches the rule for the received fragment. 

1 19. The wire-speed forwarding platform according to Claim 17, wherein the media 

2 interface further receives a packet at the forwarding platform, and the network 

3 processor testes the received packet for determining whether the packet represents a 

4 fragment and performs the multifield classification of the received packet by 

5 matching a key derived from one or more fields of the received packet to a rule, the 

6 rule comprising a plurality of fields including at least one field for specifying 

7 whether the received packet's fragmentation characteristics are to be applied when 

8 performing the multifield classification. 

1 20. The wire-speed forwarding platform according to Claim 17, wherein the 

2 network processor further determines whether there are any transfer control 

3 protocol (TCP) rules and performs the multifield classification if no TCP rules are 

4 indicated. 

1 21. The wire-speed forwarding platform according to Claim 1 7, wherein the 

2 network processor further preprocesses the received fragment by querying a data 
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3 structure in the forwarding platform, the data structure comprising one or more 

4 flags for determining whether the received fragment is to be classified in the 

5 forwarding platform. 

1 22. The wire-speed forwarding platform according to Claim 21, wherein the 

2 preprocessing by the network processor determines to forward the received 

3 fragment to a slow-speed forwarding platform. 

1 23. The wire-speed forwarding platform according to Claim 21, wherein the 

2 preprocessing by the network processor determines to discard the received 

3 fragment. 

1 24. The wire-speed forwarding platform according to Claim 21 , wherein the one or 

2 more flags are exclusive of one another. 

1 25. The wire-speed forwarding platform according to Claim 1, wherein the one or 

2 more fields that comprise the key derived from the received fragment include fields 

3 from headers representing one or more transmission protocols. 

1 26. The wire-speed forwarding platform according to Claim 25, wherein the one or 

2 more transmission protocols include: Internet Protocol (IP); User Datagram 

3 Protocol (UDP); Internet Control Message Protocol (ICMP); and Internet Group 

4 Management Protocol (IGMP). 

1 27. The wire-speed forwarding platform according to Claim 25, wherein the one or 

2 more fields include: source address (SA), destination address (DA), protocol, 

3 fragmented flag (FRAG) and not subsequent flag (NO SUBS) from a header of an 

4 IP transmission protocol; and a source port (SP) and a destination port (DP) from a 

5 header of a TCP transmission protocol. 
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1 28. The wire-speed forwarding platform according to Claim 17, wherein a field in 

2 each rule comprises one or more values to be matched against the one or more 

3 fields of the derived key for the received fragment. 

1 29. The wire-speed forwarding platform according to Claim 28 , wherein the one or 

2 more values represent an upper and a lower limit for a field in each rule. 

1 30. The wire-speed forwarding platform according to Claim 17, wherein the one or 

2 more values represent a mask and a value. 

1 31. The wire-speed forwarding platform according to Claim 17, wherein the 

2 plurality of rules are stored in the forwarding platform. 

1 32. The wire-speed forwarding platform according to Claim 17, wherein the 

2 forwarding platform further comprises control memory associated with the network 

3 processor for storing a rules database comprising the plurality of rules. 

1 33. A program storage device readable by a machine, tangibly embodying a 

2 program of instructions executable by the machine to perform the method steps for 

3 supporting multifield classification of a packet fragmented into a plurality of 

4 fragments in a wire-speed forwarding platform, the method comprising: 

5 (a) receiving a fragment of the fragmented packet at the forwarding 

6 platform and deriving a key from one or more fields of the received fragment; and 

7 (b) performing multifield classification of the received fragment by 

8 matching the key to a rule out of a plurality of rules, the rule comprising a plurality 

9 of fields including at least one field for specifying whether the received fragment's 

1 0 fragmentation characteristics are to be applied when performing the multifield 

1 1 classification. 
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1 34. The method for supporting multifield classification according to Claim 33 , 

2 wherein the rule further comprises a field for specifying an action to be applied to 

3 the received fragment, the method further comprising a step of: 

4 applying the action to the received fragment when the key matches 

5 the rule for the received fragment. 

1 35. The method for supporting multifield classification according to Claim 33, 

2 further comprising the steps of: 

3 receiving a packet at the forwarding platform; and 

4 testing the received packet for determining whether the packet 

5 represents a fragment; and 

6 performing the multifield classification of the received packet by 



7 matching a key derived from one or more fields of the received packet to a rule, the 

8 rule comprising a plurality of fields including at least one field for specifying 

9 whether the received packet's fragmentation characteristics are to be applied when 
1 0 performing the multifield classification. 

1 36. The method for supporting multifield classification according to Claim 33, 

2 further comprising the steps of: 

3 determining whether there are any transfer control protocol (TCP) 

4 rules; and 

5 performing the multifield classification if no TCP rules are 

6 indicated. 

1 37. The method for supporting multifield classification according to Claim 33, 

2 further comprising a step of preprocessing the received fragment by querying a data 

3 structure in the forwarding platform, the data structure comprising one or more 

4 flags for determining whether the received fragment is to be classified in the 

5 forwarding platform. 
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1 38. The method for supporting multifield classification according to Claim 37, 

2 wherein the preprocessing determines to forward the received fragment to a slow- 

3 speed forwarding platform. 

1 39. The method for supporting multifield classification according to Claim 37, 

2 wherein the preprocessing determines to discard the received fragment. 

1 40. The method for supporting multifield classification according to Claim 37, 

2 wherein the one or more flags are exclusive of one another. 

1 41 . The method for supporting multifield classification according to Claim 33, 

2 wherein the one or more fields that comprise the key derived from the received 

3 fragment include fields from headers representing one or more transmission 

4 protocols. 

1 42. The method for supporting multifield classification according to Claim 41 , 

2 wherein the one or more transmission protocols include: Internet Protocol (IP); 

3 User Datagram Protocol (UDP); Internet Control Message Protocol (ICMP); and 

4 Internet Group Management Protocol (IGMP). 

1 43. The method for supporting multifield classification according to Claim 41 , 

2 wherein the one or more fields include: source address (SA), destination address 

3 (DA), protocol, fragmented flag (FRAG) and not subsequent flag (NO SUBS) from 

4 a header of an IP transmission protocol; and a source port (SP) and a destination 

5 port (DP) from a header of a TCP transmission protocol. 

1 44. The method for supporting multifield classification according to Claim 33, 

2 wherein a field in each rule comprises one or more values to be matched against the 

3 one or more fields of the derived key for the received fragment. 
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1 45. The method for supporting multifield classification according to Claim 44, 

2 wherein the one or more values represent an upper and a lower limit for a field in 

3 each rule. 

1 46. The method for supporting multifield classification according to Claim 33, 

2 wherein the one or more values represent a mask and a value. 

1 47. The method for supporting multifield classification according to Claim 33, 

2 wherein the plurality of rules are stored in the forwarding platform. 

1 48. The method for supporting multifield classification according to 

2 Claim 33, wherein the plurality of rules are stored in a rules database. 

1 49. A method for supporting multifield classification of a packet 

2 fragmented into a plurality of fragments in a wire-speed forwarding platform, the 

3 method comprising: 

4 (a) receiving a fragment of the fragmented packet at the forwarding 

5 platform and deriving a key from one or more fields of the received fragment; 

6 (b) preprocessing the received fragment by querying a data structure 

7 that comprises one or more flags for determining whether the received fragment is 

8 to be classified in the forwarding platform; 

9 (c) redirecting or discarding the received fragment from the 

1 0 forwarding platform if it is determined that the received fragment is not to be 

1 1 classified at the forwarding platform; and 

1 2 (d) performing multifield classification of the received fragment by 

1 3 matching the key to a rule out of a plurality of rules, the rule comprising a plurality 

14 of fields including at least one field for specifying whether the received fragment's 

1 5 fragmentation characteristics are to be applied when performing the multifield 

16 classification. 
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1 50. A method for supporting multifield classification of a packet 

2 fragmented into a plurality of fragments in a wire-speed forwarding platform, the 

3 method comprising: 

4 (a) receiving a fragment of the fragmented packet at the forwarding 

5 platform and deriving a key from one or more fields of the received fragment; 

6 (b) determining whether there are transfer control protocol (TCP) 

7 rules and if it is determined that there are no TCP rules indicated performing 

8 multifield classification of the received fragment according to step (d); 

9 (c) preprocessing the received fragment if there are TCP rules by 

1 0 querying a data structure that comprises one or more flags for determining whether 

1 1 the received fragment is to be classified in the forwarding platform and redirecting 

12 or discarding the received fragment from the forwarding platform if it is determined 

1 3 that the received fragment is not to be classified at the forwarding platform; and 

14 (d) performing multifield classification of the received fragment by 

1 5 matching the key to a rule out of a plurality of rules, the rule comprising a plurality 

1 6 of fields including at least one field for specifying whether the received fragment's 

1 7 fragmentation characteristics are to be applied when performing the multifield 

18 classification. 



RAL920000129US1 



